Job Description
Threat & Vulnerability Analyst
Permanent
Manchester or London based - Hybrid ( 2 days per week in the office )
£50-65,000 + benefits
My client, a leading high street bank in the UK are actively looking for a Threat & Vulnerability analyst to join their Threat & Vulnerability team. This is a newly created role and a truly exciting time to join them as they look to build out their vulnerability scanning and threat intelligence capability, in the UK.
The role
Carry out the daily and weekly security operations processes as instructed by management in accordance with the agreed schedule or in response to a security incident;
Carry out continuous reviews to see where operational security process can be improved to better secure the bank and its data;
Investigate vulnerability findings present within the environment, and coordinate remediation efforts in collaboration with other IT teams and subject matter experts;
Monitor and maintain awareness of critical vulnerabilities, addressing them through patch management or by following mitigating processes to reduce impact;
Create and maintain inventory reports and alerts using inventory, vulnerability, and patch management systems;
Validate vulnerability management changes for accuracy and completion to drive timely remediation of critical vulnerabilities;
Provide status reports to leadership related to vulnerability management metrics, key risk indicators, trending risks, compliance, etc;
Assess new and existing technologies to determine potential value and risk to the enterprise and ensure risk beyond defined thresholds is appropriately treated;
Collaborate with other IT groups to ensure defined security baselines are being leveraged and benchmarked.
Operates in line with the Bank's Risk Management framework.
Qualifications
Professional competence and relevant experience in information security operations, vulnerability analysis, or risk management.
BSC or above STEM or Information Technology area is desired, but applications based on industry experience are welcome.
Microsoft Certification or equivalent in Security, Engineering or Administration
Experience in Microsoft Security or other SIEM tools, vulnerability scanning is essential.
Proficient in Microsoft Office tools and a very good working knowledge of MS Excel
Strong data analysis skills to analyse vulnerability data and publish metrics and reports using Excel.
Experience with vulnerability scanning and reporting tools.
Knowledge of enterprise-class technologies including vulnerability scanners, asset inventory systems, CMDBs, firewalls, routers, switches, wireless access points, VPNs, desktop and server operating systems, SIEM, WAF, DLP, EDR, web gateways is desirable.
For more details, please get in touch with Mary Pearson on - .